[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
Re: [eclipselink-users] Eclipselink 2.0.1 inject code detected byFindBugs
|
> There is already a patch on the site for this one:
>
> Performance - Method invokes inefficient Number constructor; use static
> valueOf instead
>
>
Thanks, I will wait until the next release to update. when will be launch the
next release?
>
> ----- Original Message -----
> From: "José Arcángel Salazar Delgado" <arcangel.salazar@xxxxxxxxxxxxxxxxxx>
> Sent: Mon, March 8, 2010 0:41
> Subject:[eclipselink-users] Eclipselink 2.0.1 inject code detected
> byFindBugs
>
>
> Hi.
>
> I'm using sonar with findbugs to check the sanity of the code. Findbugs
> encounter these errors in the code injected by eclipselink:
>
> Performance - Method invokes inefficient Number constructor; use static
> valueOf instead
>
> Bad practice - Comparison of String parameter using == or !=
>
> Malicious code vulnerability - May expose internal representation by
> returning
> reference to mutable object
>
> Malicious code vulnerability - May expose internal representation by
> incorporating reference to mutable object
>
> Bad practice - Transient field that isn't set by deserialization.
>
> Performance - Method invokes inefficient Boolean constructor; use
> Boolean.valueOf(...) instead
>
> can this be corrected for the next release?
>
> thanks for the time.
>
>
>
> _______________________________________________
> eclipselink-users mailing list
> eclipselink-users@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/eclipselink-users
>
>
>
> ----- End of original message -----
>
> _______________________________________________
> eclipselink-users mailing list
> eclipselink-users@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/eclipselink-users
>
